Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Daniel Micay Profile picture
@DanielMicay
Sep 9, 2019 15 tweets 4 min read Read on X
GrapheneOS is the continuation of the project formerly known as CopperheadOS. GrapheneOS is open source and is in the process of being properly revived and moved forward.

grapheneos.org
attestation.app
github.com/GrapheneOS
reddit.com/r/GrapheneOS
@GrapheneOS
@GrapheneOS Copperhead was a former sponsor of the project, and agreed to support it as an independent open source project under my control. Copperhead never owned the code. It was not written for them and was never assigned to them. This was part of a very explicit arrangement I required.
@GrapheneOS Unfortunately, the CEO of Copperhead (James Donaldson) is a scam artist with a criminal background. He ended up breaking the terms of agreements and attempting to seize control and ownership of the project, including attempting to compromise the security of the people using it.
@GrapheneOS He seized control over the infrastructure, stole all the donations and began his attempts to destroy the project which are still ongoing today. He's spreading lies about the project and myself on a daily basis and still attempting to do whatever he can to continue causing damage.
@GrapheneOS James was only ever interested in using the project and myself to line his pockets with money through whatever means possible. Copperhead was run in a highly unethical and irregular way. He pursued and signed deals with criminal organizations and tried to sell out to governments.
@GrapheneOS Near the end of Copperhead's involvement, James was pursuing a deal with a US military contractor. He told me he needed to provide access to infrastructure and signing keys so they could "audit" them. It was a ridiculous request that I obviously refused.

@GrapheneOS James and one of his associates were scheming to trick the police into seizing my personal hardware by claiming it was stolen company property in an attempt to get the signing keys, which wouldn't have worked anyway. I was leaked this information by someone involved with them.
@GrapheneOS It was impossible to push further updates for the original OS due to the infrastructure takeover. It was also going to take a long time to revive the project. Over a year later, it's still not fully revived and on track. I made the decision to wipe the keys to prevent compromise.
@GrapheneOS Nothing was lost from wiping the keys because it wasn't going to be possible to push a non-compromised update. I also needed fresh, untainted keys not associated with that incarnation of the project due to the threats to weaponize the police / legal system with a false narrative.
@GrapheneOS I'm currently still hard at work reviving the project. An enormous amount of damage was done to the project through theft of the donations, revenue, the primary means of communication with the community (email list, IRC channel, Matrix room, Twitter account, subreddit) and more.
@GrapheneOS I've had a very difficult time over the past year and a half. I founded this project and developed / maintained all of it over the years. I co-founded a company that was supposed to sponsor it, but it took far more than it provided even before it was hijacked and turned on me.
@GrapheneOS A year and a half later, James Donaldson is still doing whatever he can to harm the project and myself. He's using the project's legacy donations, revenue, mailing list, Twitter account, etc. as weapons to damage it, and is still attempting to scam people/companies out of money.
@GrapheneOS If it wasn't for malicious people aiming to destroy it, GrapheneOS would be much further along. It would have a substantial development team and hardware partners producing experimental generations of hardened smartphones. I don't think people realize how much James burned down.
@GrapheneOS Also, if you're wondering based on that quote, @Snowden is aware of what happened with the previous incarnation of the OS. People say lots of nasty things about him but he was there providing support after what happened and GrapheneOS would not still be around today without that.
@GrapheneOS @Snowden So sure, he's not a developer and isn't a highly technical privacy/security expert but he's trying to do good and he's one of the few people providing support to projects aiming to make things better. I see far more silly stuff in feeds of security engineers / researchers anyway.

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Daniel Micay

Daniel Micay Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @DanielMicay

Daniel Micay Profile picture
Aug 23, 2023
@4Dgifts @msolnik @dwizzzleMSFT @GrapheneOS @BllocPhone I'm still working on GrapheneOS but I'm putting much less time into it than before and I'm gradually handing off more and more of the responsibilities to the rest of the team. I don't have much energy or motivation left to work in security, software development, etc. as a whole.
@4Dgifts @msolnik @dwizzzleMSFT @GrapheneOS @BllocPhone I'm not posting much on Twitter but I still check my account every couple days. Didn't see this for 11 hours since I'm just not looking at it much anymore. People consistently harass me every day on these platforms so I don't want to be looking at it throughout the day anymore.
@4Dgifts @msolnik @dwizzzleMSFT @GrapheneOS @BllocPhone I would really prefer to completely leave immediately but it's going to take a long time to hand everything off to other people. Going to need more people and will need those people to take more responsibilities than they would have needed to if I was able to keep doing it.
Read 9 tweets
Daniel Micay Profile picture
Oct 24, 2022
@RichFelker @GrapheneOS Treble makes it possible to easily run AOSP or GrapheneOS on any hardware providing an implementation of Android vendor APIs which have a stable versioned ABI with backwards compatibility for a few major versions of the OS. It provides an easy way to support any Android phone.
@RichFelker @GrapheneOS AOSP has official support for a few development boards with an entirely open source implementation of the vendor HALs based on Mesa, etc. It's entirely possible for a phone to provide that and Pixels will likely trend towards that and away from the Exynos tech due to Tensor SoC.
@RichFelker @GrapheneOS Treble makes it so that you can run the portable userspace portion of the OS on top of any underlying drivers, services, kernel, kernel modules, etc. used to support the hardware. GKI brings this to the kernel where any GKI kernel build can be used on any device supporting GKI.
Read 12 tweets
Daniel Micay Profile picture
Sep 2, 2022
I know several people working as software engineers at Cloudflare. According to one of them, this incident (blog.cloudflare.com/the-mistake-th…) was hardly a mistake. Cloudflare is including block lists sourced from far right evangelical groups as part of their 'family friendly' DNS service.
Cloudflare is aware their 'family friendly' DNS (1.1.1.3) isn't blocking sites like Kiwi Farms (kiwifarms . net) or Daily Stormer (stormer-daily . rw). It's a deliberate decision, despite their blog post claiming their filtering is meant to mimic SafeSearch, which filters them.
Cloudflare has not stopped using block lists sourced from hateful groups. They only stopped including the subsets explicitly marked for that purpose. Easy to see why getting porn block lists from groups producing LGBTQ block lists results in continuing to "mistakenly" block more.
Read 4 tweets
Daniel Micay Profile picture
Aug 31, 2022
Cloudflare drops sites from their service on a daily basis for having content they dislike. They remove sites with adult content, support for sex workers, etc. They also drop sites they deem to be posting spam. Cloudflare's censored 1.1.1.3 DNS blocks lots of LGBT content, etc.
They're too cowardly to stand behind their decisions so they won't mention sites like Kiwi Farms by name. Their official accounts and executives all have their replies disabled on Twitter to shut down dissent. Their free speech act is a ridiculous sham. They drop lots of sites.
Cloudflare does FAR MORE content moderation than required by law. They aren't a free speech host. They remove speech they disagree with every day. They host Kiwi Farms because they support the content on it. They dropped sites used by sex workers because they consider it immoral.
Read 9 tweets
Daniel Micay Profile picture
Jul 13, 2022
@burnt_disk @MishaalRahman It's problematic that they expose those directly. They either require user consent on a case-by-case or one-time basis despite not being runtime permissions or they have no real privacy model. Low-level permissions exist for static analysis of what apps can request at runtime.
@burnt_disk @MishaalRahman For example, request install packages allows the user to allow it as an app source and then approve app installations on a case-by-case update. Only thing that can be done without case-by-case consent is updating an app again after the user authorized an install initial/update.
@burnt_disk @MishaalRahman Another example is that QUERY_ALL_PACKAGES has no actual privacy model at this point. It would mislead users into thinking that apps without it can't query all the user installed apps when they can if they list queries for common intents like the one used for launcher activities.
Read 12 tweets
Daniel Micay Profile picture
Jun 29, 2022
@IntelTechniques It's unfortunate that you're giving a platform to someone making numerous false claims about both CalyxOS and GrapheneOS to promote CalyxOS. They're spreading misinformation about our project and are misleading people about multiple privacy and security topics.
@IntelTechniques The article in unredactedmagazine.com/issues/003.pdf by Zachary McIntosh should be corrected. They're misleading people about sandboxed Google Play and microG along with falsely claiming that the CalyxOS approach does not use Google services, when in fact CalyxOS always does.
@IntelTechniques It makes numerous inaccurate claims about CalyxOS, misleading people in a harmful way. It presents AOSP features as ones added by CalyxOS and makes inaccurate claims about the CalyxOS features. Many claims there are inaccurate marketing talking points about it.
Read 5 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us!

Send Email!

:(